Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%APPDATA%\SearchIndexer\desktopsearchservice.exe' = '%APPDATA%\SearchIndexer\desktopsearchservice.exe:*:Enabled:DesktopSearchService'
- '%APPDATA%\SearchIndexer\desktopsearchservice.exe' /inno
- '%TEMP%\is-FJ9HM.tmp\ModuleInno.tmp' /SL5="$40092,5068578,118784,%APPDATA%\SearchIndexer\ModuleInno.exe" /VERYSILENT
- '%APPDATA%\SearchIndexer\ModuleInno.exe' /VERYSILENT
- ClassName: 'PROCMON_WINDOW_CLASS' WindowName: ''
- ClassName: 'RegMonClass' WindowName: ''
- ClassName: 'FileMonClass' WindowName: ''
- %APPDATA%\SearchIndexer\is-RQ32G.tmp
- %APPDATA%\SearchIndexer\is-5CLA5.tmp
- %TEMP%\is-AIPRB.tmp\_isetup\_shfoldr.dll
- %ALLUSERSPROFILE%\Application Data\Licenses\0A0995EA86D1FCCEB.Lic
- %ALLUSERSPROFILE%\Application Data\TEMP:44504F07
- %ALLUSERSPROFILE%\Application Data\TEMP\RAIDTest
- %APPDATA%\SearchIndexer\cudart32_60.dll
- %APPDATA%\SearchIndexer\ModuleInno.exe
- %TEMP%\nsp2.tmp
- %TEMP%\is-FJ9HM.tmp\ModuleInno.tmp
- %APPDATA%\SearchIndexer\pthreadVC2.dll
- %APPDATA%\SearchIndexer\desktopsearchservice.exe
- %TEMP%\is-FJ9HM.tmp\ModuleInno.tmp
- %TEMP%\is-AIPRB.tmp\_isetup\_shfoldr.dll
- %APPDATA%\SearchIndexer\is-RQ32G.tmp в %APPDATA%\SearchIndexer\SearchIndexer2.exe
- %APPDATA%\SearchIndexer\is-5CLA5.tmp в %APPDATA%\SearchIndexer\SearchIndexer1.exe
- ClassName: 'Shell_TrayWnd' WindowName: ''